[CLSA-2023:1697740947] glib2: Fix of 5 CVEs
Type:
security
Severity:
Important
Release date:
2023-10-19
Description:
- Enable internal tests - Skip several failed tests from the check - CVE-2023-29499: Fix GVariant offset table entry size which is not checked in is_normal() - CVE-2023-32611: Fix an issue where g_variant_byteswap() can take a long time with some non-normal inputs - CVE-2023-32665: Fix GVariant deserialisation which does not match spec for non-normal data - CVE-2023-32636: Fix a wrong timeout in fuzz_variant_text() - CVE-2023-32643: Fix a heap-buffer-overflow in g_variant_serialised_get_child() - Fix g_test_bug assertion in gvariant test
Updated packages:
  • glib2-2.56.4-156.el8.tuxcare.els1.i686.rpm
    sha:3c0996f4bfb39bcef51d0f8e7f7a4443e391933c
  • glib2-2.56.4-156.el8.tuxcare.els1.x86_64.rpm
    sha:735ee4f3ed5b16ecaa65a371848cb7c914d207b1
  • glib2-devel-2.56.4-156.el8.tuxcare.els1.i686.rpm
    sha:b67ab2d4224ec798a78553ea398eeb94533c6ad4
  • glib2-devel-2.56.4-156.el8.tuxcare.els1.x86_64.rpm
    sha:3af5573e2440ae1b52c748997dd2fad60079101b
  • glib2-doc-2.56.4-156.el8.tuxcare.els1.noarch.rpm
    sha:8416e7d90d0dc18a45b7bab24de8f271e16b6a4e
  • glib2-fam-2.56.4-156.el8.tuxcare.els1.x86_64.rpm
    sha:818d25cbd731400252ff8b491902601d998b3a44
  • glib2-static-2.56.4-156.el8.tuxcare.els1.i686.rpm
    sha:0df89338f7c2a1f8f0bfd7474f5ec8a152ec81d2
  • glib2-static-2.56.4-156.el8.tuxcare.els1.x86_64.rpm
    sha:f542e3bb2d4895e72db53d1e8f17131ad5c687c1
  • glib2-tests-2.56.4-156.el8.tuxcare.els1.x86_64.rpm
    sha:8689db641298b92af814e52b69bcd5db51606367
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.